[jboss-jira] [JBoss JIRA] (ELY-959) Coverity static analysis: Serializable *Callback classes containes non-serializable fields
David Lloyd (JIRA)
issues at jboss.org
Fri Jun 2 17:50:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-959?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13415926#comment-13415926 ]
David Lloyd commented on ELY-959:
---------------------------------
These callbacks should all be made non-serializable.
> Coverity static analysis: Serializable *Callback classes containes non-serializable fields
> ------------------------------------------------------------------------------------------
>
> Key: ELY-959
> URL: https://issues.jboss.org/browse/ELY-959
> Project: WildFly Elytron
> Issue Type: Bug
> Affects Versions: 1.1.0.Beta24
> Reporter: Martin Choma
>
> Coverity static analysis found, there is couple of *Callback classes, which are mark as Serializable, and contains non-serializable fields.
> * CredentialCallback
> * CredentialUpdateCallback
> * MechanismInformationCallback
> * SSLCallback
> * SecurityIdentityCallback
> * ServerCredentialCallback
> * TrustedAuthoritiesCallback
> Either mark fields as transient or Serializable.
> https://scan7.coverity.com/reports.htm#v23632/p11778/fileInstanceId=8490519&defectInstanceId=2123214&mergedDefectId=1377493
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list